The Central Bank of Ireland said on 5 October that investment firms and credit institutions, who are engaged in securities markets activity, failed to adequately monitor how staff communicate while working from home, raising the risk of market abuse.
The Dublin-headquartered regulator warned in March of the risk of abuse-related conduct arising from the use of unmonitored, unauthorised or unencrypted telephone and electronic communication devices when employees are working remotely or as part of a hybrid model.
It said a recent assessment found that none of the firms included had made amendments to recording of telephone and electronic policies or procedures despite moving from a largely in-office environment during and after covid lockdowns.
Monitoring and testing conducted by firms did not meet the central bank's expectations while the small number of breaches of policies identified by firms indicated that their monitoring is not working effectively, the regulator added.
The assessment did identify that some firms exhibited good practices in ensuring that all telephone and electronic communications are recorded and retention periods are set in accordance with EU requirements.
The regulator further said it expected that firms would continue to focus on improving their safeguards and that the assessment results should be brought to the attention of all board members, senior management and relevant staff by year-end.
